$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: H6JAzD7Gkj5BpPH8aQtNXDtV+mzZS6JsELSXs95auSk= Subject key identifier: A1:F9:73:26:38:FB:21:06:FA:7D:3B:99:CB:B0:02:BB:23:4F:3C:C8 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 0446 Signing time: Thu 03 Jul 2025 00:40:13 +0000 Manifest this update: Thu 03 Jul 2025 00:40:12 +0000 Manifest next update: Thu 10 Jul 2025 00:40:12 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: oF2qsPXx0Sd/ph/GswMDMrx/neNkFvLPur0MG/Dlm3A=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Jul 3 00:40:12 2025 GMT Not After : Jul 10 00:40:12 2025 GMT Subject: CN=6865d16c-16b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e0:48:ad:ae:10:27:27:1a:89:6b:62:ba:d1: 00:79:74:42:96:d2:c4:82:ed:34:8b:bd:6e:f6:80: bc:07:90:ae:83:8e:7b:8d:10:56:78:4e:25:b4:0a: 0b:49:32:5e:92:a1:d3:61:f5:32:fa:66:3c:b3:9a: 53:48:a5:8f:eb:dd:7c:39:79:a2:ec:77:f9:30:21: 1b:5d:9e:70:14:80:b9:ca:0d:67:3f:26:f7:e9:ff: 3a:71:70:73:a8:c6:e2:3f:aa:80:f7:7c:94:7b:62: d2:23:cc:f6:04:1b:fe:1a:c7:26:19:bb:c3:d7:e3: 40:55:2e:61:9c:1a:49:e7:8e:7f:2c:94:38:15:ec: 98:ff:3d:fd:f0:9e:84:1c:74:cb:31:ad:07:a1:84: 57:28:09:26:82:33:90:a4:c1:24:22:ef:8d:57:e1: 37:e8:d1:49:c5:a4:31:a3:f6:46:96:8f:23:30:45: e6:f9:e5:e1:8d:93:3a:20:75:81:40:5f:bd:7f:06: cd:6e:3c:a1:d1:26:f6:4d:c3:bc:fa:70:ee:60:fa: 56:52:55:52:5e:ad:06:5d:cd:5f:f7:c0:86:b2:f6: 18:e3:a1:d1:2c:1c:42:4c:d6:35:1a:1a:ca:86:f5: 88:e3:8a:da:6c:ac:e9:1f:f9:ae:cc:14:20:10:8d: 8d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F9:73:26:38:FB:21:06:FA:7D:3B:99:CB:B0:02:BB:23:4F:3C:C8 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f1:11:6d:2a:ca:6c:1d:03:e9:a6:0a:2f:b6:90:1a:8e:b7: 41:54:42:31:d5:b1:0a:c5:94:e5:f4:36:7e:05:83:9f:0d:0a: 94:d3:b5:d0:ac:65:d2:2c:23:65:0f:c5:91:13:d3:16:5b:5e: 85:43:52:44:90:b8:8f:96:d8:79:cd:6b:30:6b:31:08:a8:6d: ba:2e:8d:13:be:25:1c:e0:3e:14:b6:8e:6f:7c:f8:d8:40:11: 61:b7:e6:3e:84:20:d6:aa:fc:58:bc:c0:41:52:64:73:2e:f2: 63:de:81:22:6e:65:2b:5c:c6:98:b0:c9:b0:9e:81:9e:ec:0e: 83:a1:0e:27:c7:e2:3d:dd:d4:35:4e:84:35:ba:f0:94:fd:6e: c1:09:67:77:67:6d:38:7d:bd:f5:ef:6e:22:2f:39:15:01:54: c2:01:da:a6:58:24:66:55:6d:8b:15:6f:03:9e:ab:3c:ca:db: 8e:f9:6d:14:f6:72:b3:de:8a:96:22:5b:a6:55:8f:38:cb:18: da:a9:8c:f1:79:86:a9:b4:56:bf:0b:c2:c2:df:27:99:d1:29: 51:9f:8e:38:c3:e1:82:49:ca:1b:e8:de:a0:f0:a4:47:5f:ea: 03:ed:a5:3f:71:83:d8:6d:3c:45:ce:be:df:75:1b:6f:72:75: d5:b9:da:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUwNzAzMDA0MDEyWhcNMjUwNzEwMDA0MDEyWjAYMRYwFAYD VQQDEw02ODY1ZDE2Yy0xNmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+BIra4QJycaiWtiutEAeXRCltLEgu00i71u9oC8B5Cug457jRBWeE4ltAoL STJekqHTYfUy+mY8s5pTSKWP6918OXmi7Hf5MCEbXZ5wFIC5yg1nPyb36f86cXBz qMbiP6qA93yUe2LSI8z2BBv+GscmGbvD1+NAVS5hnBpJ545/LJQ4FeyY/z398J6E HHTLMa0HoYRXKAkmgjOQpMEkIu+NV+E36NFJxaQxo/ZGlo8jMEXm+eXhjZM6IHWB QF+9fwbNbjyh0Sb2TcO8+nDuYPpWUlVSXq0GXc1f98CGsvYY46HRLBxCTNY1GhrK hvWI44rabKzpH/muzBQgEI2NgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKH5cyY4 +yEG+n07mcuwArsjTzzIMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC8RFtKspsHQPppgovtpAajrdBVEIx1bEKxZTl9DZ+BYOfDQqU07XQ rGXSLCNlD8WRE9MWW16FQ1JEkLiPlth5zWswazEIqG26Lo0TviUc4D4Uto5vfPjY QBFht+Y+hCDWqvxYvMBBUmRzLvJj3oEibmUrXMaYsMmwnoGe7A6DoQ4nx+I93dQ1 ToQ1uvCU/W7BCWd3Z204fb31724iLzkVAVTCAdqmWCRmVW2LFW8Dnqs8ytuO+W0U 9nKz3oqWIlumVY84yxjaqYzxeYaptFa/C8LC3yeZ0SlRn444w+GCScob6N6g8KRH X+oD7aU/cYPYbTxFzr7fdRtvcnXVudpW -----END CERTIFICATE-----Generated at Thu Jul 3 07:05:26 2025 by rpki-client